- June 15, 2021
- Research Triangle Park, North Carolina
The ISA Global Cybersecurity Alliance (ISAGCA), along with admeritia GmbH (admeritia), today announced the release of the Top 20 Secure PLC Coding Practices document. The document aims to provide a list of coding practices for PLC programmers that have benefits for the IT security of PLCs and the plants they control.
The ISA Global Cybersecurity Alliance is proud to be a contributing organization for the release of the Top 20 Secure PLC Coding best practices document. This public-sourced document utilized our members and leaders, many of whom have graciously volunteered their time, to join forces with other colleagues and experts from around the world to help develop this grassroots list.
"At S4x20, Jake Brodsky identified that engineers and others who are programming and configuring PLC's are not being taught security practices,” said Dale Peterson, Creator and Program Chair of S4. “It's gratifying that the community, including organizations like ISAGCA, came together to fill this gap by creating and making freely available the Top 20 PLC Secure Coding Practices."
“ISAGCA is pleased with the project's release and are looking forward to its future utilization for our members. The Top 20 Secure PLC Coding best practices document is sure to benefit the entire automation community in the ever-important PLC space,” said ISA Global Cybersecurity Alliance Managing Director Andre Ristaino.
You can download the Top 20 Secure PLC coding practices document at www.plc-security.com.
The ISA Global Cybersecurity Alliance is made up of 50 member companies, representing more than $300 billion in aggregate revenue across more than 2,400 combined worldwide locations. Automation and cybersecurity provider members serve 31 different industries, underscoring the broad applicability of the ISA/IEC 62443 series of standards. Current members of ISAGCA include 1898 & Co. (Burns McDonnell), ACET Solutions, aeSolutions, Baserock IT Solutions, Bayshore, Carrier Global, Claroty, ConsoleWorks, Coontec, CyberOwl, CyPhy Defense, Deloitte, Digital Immunity, Dragos, Eaton, exida, Ford Motor Company, Fortinet, Honeywell, Idaho National Laboratory, Idaho State University, ISASecure, Johns Manville, Johnson Controls, KPMG, LOGIIC, Mission Secure, MT4 senhasegura, Munio Security, Nova Systems, Nozomi Networks, PAS, PETRONAS, Pfizer, Radiflow, Rockwell Automation, Schneider Electric, Surge Engineering, TDI Technologies, Tenable, TI Safe, Tripwire, UL, Wallix, WINICSSEC, WisePlant, Xage Security, and Xylem. For more information about ISAGCA, visit www.isa.org/isagca.
As an owner-managed company, admeritia GmbH turned to industrial IT security shortly after it was founded in 2004. Since then, admeritia has been established as a permanent partner with a focus on technically effective and individually feasible IT security for Industrial Control Systems (ICS) and OT security.